JOB SUMMARY

As a GC3 cyber threat intelligence analyst you will enable HM Government to understand significant and cross-cutting cyber threats, and make effective decisions about these. You will also help to ensure cross-government cyber threat intelligence collaboration and communication, ensuring that departments are sharing and receiving the intelligence needed to “defend as one”.
In June 2025, it was announced that the Government Cyber Directorate will move to the Department for Science, Innovation and Technology (DSIT) as a part of a machinery of government change. This change aims to bring together the digital transformation of public services into one central department, presenting exciting opportunities and positioning DSIT to lead the government’s digital agenda.
This role is in scope to transfer to DSIT when the machinery of government change takes place. As a result, if you are successful and appointed by Cabinet Office to this role before on the transfer date, when this is confirmed, your role will transfer from Cabinet Office to DSIT at the time of the relevant machinery of government change taking place. If your start date is on the transfer date, when this is confirmed, you will be appointed direct to DSIT and your appointment will be unaffected by the machinery of government change. We are currently consulting with our Trade Unions on which policies, terms and conditions will apply on transfer. The statement of changes applied to all other Cabinet Office staff will also apply to you if you are successful.

JOB DESCRIPTION

In this role you will be responsible for:

• Developing Subject Matter Expertise in and maintaining situational awareness of relevant cyber threats, using all resources available to you.
• Understanding the wider technology and threat environments for Government, to inform and provide context for your products and assessments.
• Collecting information from a wide range of open, commercial and government sources to enable the cyber threat intelligence process.
• Processing and analysing information, using a range of critical thinking and creative approaches and techniques.
• Producing high-quality, insightful and impactful reporting which enables customers to make effective decisions about the cyber threat.
• Collaborating and engaging with cyber threat intelligence teams across wider Government and in industry partners, developing and maintaining good working relationships to enable effective intelligence sharing.

You should also expect to support wider GC3 Cyber Operations functions as required.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is Security Check (SC) but must be willing to undergo Developed Vetting (DV) clearance whilst in post where necessary.

NATIONALITY REQUIREMENTS

This job is broadly open to the following groups:

• UK nationals
• nationals of the Republic of Ireland
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
• Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service

Further information on nationality requirements

In this role you will be responsible for:

• Developing Subject Matter Expertise in and maintaining situational awareness of relevant cyber threats, using all resources available to you.
• Understanding the wider technology and threat environments for Government, to inform and provide context for your products and assessments.
• Collecting information from a wide range of open, commercial and government sources to enable the cyber threat intelligence process.
• Processing and analysing information, using a range of critical thinking and creative approaches and techniques.
• Producing high-quality, insightful and impactful reporting which enables customers to make effective decisions about the cyber threat.
• Collaborating and engaging with cyber threat intelligence teams across wider Government and in industry partners, developing and maintaining good working relationships to enable effective intelligence sharing